Use self-signed digital certificates
- Last UpdatedAug 19, 2024
- 1 minute read
You can generate and use your own self-signed OPC UA compliant digital certificate and key pair. This digital certificate can be associated to the OPC UA Client connectivity to exchange data with any OPC UA compliant server. You can use a variety of third-party utilities to generate and manage digital certificates.
Note: In a secured environment where the digital certificate is required to be signed by a Certificate Authority, please consult your IT department for the procedure.
Location of OPC UA Server Public Certificate
Gateway Communication Driver automatically trusts the external OPC UA servers if their public certificates are stored in the following folder in DER format.
Public certificate (.der file): C:\ProgramData\Wonderware\OI-Server\$Operations Integration Supervisory Servers$\OI.GATEWAY\CertificateStores\trusted\certs folder
If you start the Gateway Communication Driver by connecting it to any OPC UA server, Gateway Communication Driver will also automatically deposit the OPC UA server public certificate to the above folder.
Location of Gateway Communication Driver Public Certificate
To establish trust of Gateway Communication Driver to the external OPC UA server, see the documentation of the external OPC UA server. You may need to import the public certificate file of Gateway Communication Driver to the certificate configuration tool of the external OPC UA server provider. The public certificate of Gateway Communication Driver can be found at:
Public certificate (.der file): C:\ProgramData\Wonderware\OI-Server\$Operations Integration Supervisory Servers$\OI.GATEWAY\CertificateStores\certs\OIGateway OPCUA.der